AMENDMENTS TO THE CLAIMS 



This listing of claims will replace all prior versions, and listings, of claims 
in the application: 

Listing of Claims: 

1 . (Currently amended) A method to facilitate global timeout in a 
distributed computing environment, comprising: 

receiving an access request from a user at an application in the distributed 
computing environment; 

determining if the distributed computing environment has issued an 
authentication to a user device through which the user accesses the application, 
wherein the authentication is stored within a time-stamped token on the user- 
device, and whoroin determining if the authentication has not expired by 
comparing a time within the time-stamped token against a current time : and 

if the authentication has not been received or has expired, redirecting the 
access request to a single sign-on server for the distributed computing 
environment; 

otherwise granting access to the application to the user. 

2. (Original) The method of claim 1 , wherein the distributed 
computing environment includes multiple partner applications distributed across 
multiple network servers coupled to a public network. 

3. (Original) The method of claim 2, wherein the public network 
includes the Internet. 
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1 j 4. (Currently amended) The method of claim 2 claim 1 , wherein 

2 determining if the distributed computing environment has issued the 

3 authentication to the user involves: 

4 receiving an authentication credential from the user; 

5 verifying that the authentication credential is valid; and 

6 providing the time-stamped token to the user-device, wherein the time- 

7 stamped token includes the authentication and a time. 

1 5. (Original) The method of claim 4, wherein determining if the 

2 authentication has expired involves: 

3 recovering the time-stamped token from the user-device; 

4 adding the specified period to the time within the time-stamped token to 

5 produce an expiry time; and 

6 detecting if a current time is later than the expiry time, whereby if the 

7 current time is later than the expiry time, the authentication has expired. 

1 6. (Original) The method of claim 5, wherein the time within the 

2 time-stamped token is updated to the current time by a partner application when 

3 the partner application is accessed. 

1 7. (Original) The method of claim 4, wherein the time-stamped token 

2 is a domain cookie, wherein the domain cookie is accessible by multiple network 

3 servers within a domain on the public network. 

1 8. (Original) The method of claim 4, wherein the time-stamped token 

2 is encrypted to prevent attacks. 
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9. (Currently amended) A computer-readable storage medium storing 
instructions that when executed by a computer cause the computer to perform a 
method to facilitate global timeout in a distributed computing environment, 
wherein the computer readable storage medium includes one of a volatile memory 
and a non-volatile memory, the method comprising: 

receiving an access request from a user at an application in the distributed 
computing environment; 

determining if the distributed computing environment has issued an 
authentication to a user device through which the user accesses the application, 
wherein the authentication is stored within a time-stamped token on the user- 
device, and wh e r e in determining if t he authentication has not expired by 
comparing a time within the time-stamped token against a current time : and 

if the authentication has not been received or has expired, redirecting the 
access request to a single sign-on server for the distributed computing 
environment; 

otherwise granting access to the application to the user. 

1 0. (Original) The computer-readable storage medium of claim 9, 
wherein the distributed computing environment includes multiple partner 
applications distributed across multiple network servers coupled to a public 
network. 

1 1 . (Original) The computer-readable storage medium of claim 1 0, 
wherein the public network includes the Internet. 

12. (Currently amended) The computer-readable storage medium of 
claim lOclaim 9 , wherein determining if the distributed computing environment 
has issued the authentication to the user involves: 
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4 receiving an authentication credential from the user; 

5 verifying that the authentication credential is valid; and 

6 providing the time-stamped token to the user-device, wherein the time- 

7 stamped token includes the authentication and a time. 

1 13. (Original) The computer-readable storage medium of claim 1 2, 

2 wherein determining if the authentication has expired involves: 

3 recovering the time-stamped token from the user-device; 

4 adding the specified period to the time within the time-stamped token to 

5 produce an expiry time; and 

6 detecting if a current time is later than the expiry time, whereby if the 

7 current time is later than the expiry time, the authentication has expired. 

1 14. (Original) The computer-readable storage medium of claim 13, 

2 wherein the time within the time-stamped token is updated to the current time by a 

3 partner application when the partner application is accessed. 

1 15. (Original) The computer-readable storage medium of claim 12, 

2 wherein the time-stamped token is a domain cookie, wherein the domain cookie is 

3 accessible by multiple network servers within a domain on the public network. 

1 16. (Original) The computer-readable storage medium of claim 12, 

2 wherein the time-stamped token is encrypted to prevent attacks. 

1 17. (Currently amended) An apparatus to facilitate global timeout in a 

2 distributed computing environment, comprising: 

3 a receiving mechanism that is configured to receive an access request from 

4 a user at an application in the distributed computing environment; 
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a determining mechanism that is configured to determine if the distributed 
computing environment has issued an authentication to a user device through 
which the user accesses the application, wherein the authentication is stored 
within a time-stamped token on the user-device, and wherein determine if the 
authentication has not expired by comparing a time within the time-stamped token 
against a current time : and 

a redirecting mechanism that is configured to redirect the access request to 
a single sign-on server for the distributed computing environment if the 
authentication has not been received or has expired. 

1 8. (Original) The apparatus of claim 1 7, wherein the distributed 
computing environment includes multiple partner applications distributed across 
multiple network servers coupled to a public network. 

1 9. (Original) The apparatus of claim 1 8, wherein the public network 
includes the Internet. 

20. (Currently amended) The apparatus of claim IS claim 17 , wherein 
the receiving mechanism is further configured to receive an authentication 
credential from the user, the apparatus further comprising: 

a verifying mechanism that is configured to verify that the authentication 
credential is valid; and 

a time-stamp mechanism that is configured to provide the time-stamped 
token to the user-device, wherein the time-stamped token includes the 
authentication and a time. 

2 1 . (Original) The apparatus of claim 20, further comprising: 
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2 a recovering mechanism that is configured to recover the time-stamped 

3 token from the user-device; 

4 an adding mechanism that is configured to produce the specified period to 

5 the time within the time-stamped token to produce an expiry time; and 

6 a detecting mechanism that is configured to detect if a current time is later 

7 than the expiry time, whereby if the current time is later than the expiry time, the 

8 authentication has expired. 

1 22. (Original) The apparatus of claim 2 1 , wherein the time within the 

2 time-stamped token is updated to the current time by a partner application when 

3 the partner application is accessed. 

1 23 . (Original) The apparatus of claim 20, wherein the time-stamped 

2 token is a domain cookie, wherein the domain cookie is accessible by multiple 

3 network servers within a domain on the public network. 

1 24. (Original) The apparatus of claim 20, wherein the time-stamped 

2 token is encrypted to prevent attacks. 
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